BSSN: Leaked Data Traded In Dark Forums Not Data Cares To Protect

Illustration (Photo: Pixabay)

JAKARTA - The National Cyber and Crypto Agency (BSSN) explained about the data on COVID-19 patients belonging to the Indonesian Ministry of Health which was allegedly leaked and traded on a dark forum on the Reddit site. BSSN confirms that the leaked data is not data from PeduliLindung.

"We reported yesterday that the Ministry of Health's data was leaked or we saw it being traded on the dark web. Are there many questions about Care to Protect or not? So what was leaked was not Care to Protect," said Head of BSSN Hinsa Siburian in a meeting with Commission I DPR, Thursday, 20 January.

Although he did not explain where the leaked data came from, Hinsa said that patient data at the Director General of the Ministry of Health had not yet been entered into the BSSN.

"So it seems that in the ministry, each director general has its own system. So yesterday, it had not yet entered the BSSN. Because we focused on securing Care for Protect," he said.

Hinsa then explained the roles of BSSN in protecting the PeduliLindung application. First, assessing security and compiling a data security plan, from 23 to 26 August 2021.

"BSSN conducts security assessments on the PeduliLindung, Silacak, Hicare and New All Record applications from the Ministry of Health, as well as drafts data security plans and applications related to COVID," he said.

Second, monitoring the work of the security system together with the coordinating ministry, PT Telkom, PT Lintas Arta, monitoring the performance of the security system. Both from the infrastructure side and from the application side through the user sharing dashboard.

Third, recommending the implementation of security techniques, recommending the Ministry of Communications and Informatics and the Ministry of Health to implement web-based application and network security techniques on the PeduliLindung application in an effort to ward off attacks that may occur.

Fourth, monitoring traffic anomalies, carrying out traffic anomalies for the PeduliLindung application which is stored in the temporary national data center of the Ministry of Communication and Informatics.

"Being the focus of BSSN as well, BSSN has installed sensors so that PeduliLindung can be monitored from collateral, from the cyber security operations center," Hinsa explained.

Fifth, conduct a feasibility test on September 17 to 24, 2021. BSSN, said Hinsa, periodically conducts a feasibility test with the results that Telkom can use cloud backups for the PeduliLindung application by following up on security recommendations by BSSN.

"Sixth, storing backup data, BSSN stores 2.98 million data related to COVID-19 and stores that data in BSSN Ragunan," said Hinsa.